Commit Graph

1453 Commits

Author SHA1 Message Date
Ralf Becker
2a500333ed explicit call Egw::__destruct() to fix calendar notifications not send, if dialog is Saved not Applied 2020-07-27 16:08:00 +02:00
Ralf Becker
ca73a54d89 * Security: allow to configure SameSite cookie attribute 2020-07-27 14:03:48 +02:00
Ralf Becker
074b884133 calendar non-list views need refresh calls, even using push 2020-07-27 09:45:37 +02:00
Ralf Becker
6007fb5363 fix broken token/syntax, if no metadata yet 2020-07-24 16:55:58 +02:00
Ralf Becker
8bb9111cd5 fix double message in popup and none in main window 2020-07-24 09:23:44 +02:00
Ralf Becker
b60a9ffff4 add check if only fallback push and skip full refresh (Framework::refresh_opener) for push and supporting apps 2020-07-24 09:07:13 +02:00
Ralf Becker
efaf9771d0 do NOT push participants of type email for privacy reasons 2020-07-23 19:06:08 +02:00
Ralf Becker
0f799acd75 fix multiple accounts could not subscribe for push on the same mailbox 2020-07-23 16:56:45 +02:00
Ralf Becker
cf06054fd7 move configuration of imap servers supporting push to mail site config and stadard imap server 2020-07-23 14:17:32 +02:00
Ralf Becker
25f942c431 fix accidently commited host-name 2020-07-22 18:21:07 +02:00
Ralf Becker
0f8a2668fb fix token was only updated on account-change, not new login or daily token rotation, also support now multiple tokens/instances registring tokens for same account 2020-07-22 17:01:19 +02:00
nathangray
32b061919f Etemplate: Change default for password widget suggest to off
Customfields still default to on
2020-07-21 15:36:45 -06:00
Ralf Becker
bf44ee753a WIP push for mail (currently only Dovecot with further configuration!) 2020-07-20 12:09:08 +02:00
nathangray
bd7b916811 Api: log on_shutdown() messages to its own log file 2020-07-16 14:54:02 -06:00
Ralf Becker
502d423885 fix PHP Warning: substr() expects parameter 1 to be string, array given 2020-07-10 11:08:38 +02:00
Ralf Becker
7428e2d7cd do not add path of url to CSP 2020-07-07 13:18:28 +02:00
nathangray
4c7709d49f Etemplate: Get vfsUpload values to use expose so they work like links 2020-07-03 14:23:41 -06:00
nathangray
ee498f703d Etemplate: Fix password widget could not be cleared entirely 2020-07-03 09:25:51 -06:00
Hadi Nategh
6ba8210d83 Avoid requesting external images with mixed content 2020-06-30 15:54:21 +02:00
Ralf Becker
27ad7772de add AGPL license for smallpart 2020-06-28 11:35:44 +02:00
Ralf Becker
4959281164 fix optional SAML/Shibboleth login fails when proxying as form field with name "auth=saml" get lost 2020-06-24 08:56:13 +02:00
nathangray
f0e074093c Ralf's fix for Saml for PHP 7.2 2020-06-23 10:21:07 -06:00
Ralf Becker
08b039c4fb fix some SAML/Shibboleth problems caused by EGroupware running in container behind proxy on host 2020-06-21 08:17:00 +02:00
Hadi Nategh
b95e9be02a Cleanup widget browser 2020-06-18 14:58:24 +02:00
Ralf Becker
7e81b733e1 fix typo in directory permissions 2020-06-18 10:48:56 +02:00
nathangray
b56a8f9901 Default password customfield plaintext attribute to false 2020-06-16 09:23:54 -06:00
Ralf Becker
2c489ef5b8 change default for password attribute plaintext back to true, to not break every existing usage of that widget 2020-06-16 08:37:51 +02:00
nathangray
d7d5837ecf Nicer password widget on account edit dialog
- Added plain-text attribute to avoid encrypting password
- Suggest password now fills both fields the same
2020-06-15 16:08:24 -06:00
Ralf Becker
e996b2c0cf reverting 2 changes around sessions which break our installation
checking for the not existing (new) database runs into an invinit recursion
the checks not to use $_SESSION, if no session is active was added in an attempt to get SimpleSAMLphp discovery working, but seems unneccessary for what we currently use
2020-06-15 10:11:31 +02:00
nathangray
aab5415873 * Etemplate: Password widget improvements - suggest password button, added as custom field type (stored encrypted) 2020-06-12 10:56:53 -06:00
Ralf Becker
b7ed148371 * SAML: support joining a SAML account to an existing one, if configured in setup
notification of user does not yet work, as redirect on login page looses Api\Framework::message() :(
2020-06-11 16:03:54 +02:00
nathangray
a993938134 Etemplate: Fix VFS & file widgets were not properly handling files 2020-06-10 10:20:30 -06:00
Ralf Becker
19f52cd1de fix regular login, if optional SAML one is enabled for multiple IdP 2020-06-10 16:17:20 +02:00
Ralf Becker
4c131c1866 SAML/Shibboleth with multiple IdP or optional on regular login page 2020-06-10 15:19:24 +02:00
Ralf Becker
a0760f6b96 * Mail: fix creating a folder on level of inbox gave an error (if imap server supports it) 2020-06-08 11:59:49 +02:00
Ralf Becker
1ea45e6591 Mime-Type check can only work for the first chunk, further ones will always fail 2020-06-02 13:46:46 +02:00
Ralf Becker
4d2d14dd99 make running / generating SAML/Shibboleth config depending on an IPD configured 2020-05-29 10:25:31 +02:00
Ralf Becker
b1f79d1c40 * SAML/Shibboleth/SimpleSAMLphp authentication configurable through setup 2020-05-28 23:24:09 +02:00
Hadi Nategh
8d022c5908 do not try to push notifications for api.queue requests 2020-05-22 10:16:59 +02:00
Ralf Becker
7226f0f753 allow to set a css class on body tag for (different) styling of an embeded window 2020-05-19 09:43:53 +02:00
Ralf Becker
d04e6ebdec do NOT check eT2 popups for missing framework 2020-05-19 09:02:47 +02:00
Ralf Becker
9b17fa7871 fix typo 2020-05-18 20:56:50 +02:00
Ralf Becker
46a3818e92 * ActiveDirectory: consider security local groups as groups too 2020-05-13 13:16:08 +02:00
Ralf Becker
319ae2637c an other case of not automatic fixed ambigious auto-id 2020-05-08 12:35:09 +02:00
Ralf Becker
c50fd8e6bf * API: new data-minimizing account display options "Firstname Inital" and "Firstname [ID]" 2020-05-04 09:25:32 +02:00
Ralf Becker
474d63a79b support hashes generated by password_hash($pwd, PASSWORD_BCRYPT) 2020-05-04 09:01:11 +02:00
Ralf Becker
cdf5d939e9 docu update 2020-05-04 08:56:32 +02:00
Ralf Becker
b4db228c96 fix typo 2020-04-30 17:33:37 +02:00
Ralf Becker
7bf6b33ab2 move adding CSP frame-src of OpenIDConnect clients managed as apps to OpenID app 2020-04-30 17:32:30 +02:00
Ralf Becker
9a548dca68 fix csp-*-source hook not run, if Api\Header\ContenSecurity::add() was called 2020-04-30 17:31:46 +02:00